Bug#369351: exim4-daemon-heavy: Insecure quote escaping in
PostgreSQL backend
Marc Haber
mh+debian-packages at zugschlus.de
Fri Jun 30 10:26:34 UTC 2006
On Mon, May 29, 2006 at 08:49:57PM +0200, Florian Weimer wrote:
> PQescapeString is deprecated because given its interface, the security
> bug cannot be closed completely. You really should use
> PQescapeStringConn.
I have added this to the upstream bugzilla
(http://www.exim.org/bugzilla/show_bug.cgi?id=107) and hope that this
will give upstream a friendly nudge to act on the report.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
More information about the Pkg-exim4-maintainers
mailing list